登 录|IP登 录|注 册| 知识中心首页 联系我们 版权声明
当前位置: 首页> 国外交通科技报告数据库 >详情
原文传递 Active Response Using Host Based Intrusion Detection System and Software Defined Networking.
题名: Active Response Using Host Based Intrusion Detection System and Software Defined Networking.
作者: Goodgion, J. S.
关键词: Intrusion detection systems, Computer network security, Denial of service attack, Network protocols, Operating systems, Authentication, Central processing units, Debugging, Network architecture, Transport protocols, Computer programs, Software defined radio, Openflow, Software-dened networking
摘要: This research proposes AHNSR: Active Host-based Network Security Response by utilizing Host-based Intrusion Detection Systems (HIDS) with Software-Defined Networking (SDN) to enhance system security by allowing dynamic active response and reconstruction from a global network topology perspective. Responses include traffic redirection, host quarantining, filtering, and more. A testable SDN-controlled network is constructed with multiple hosts, OpenFlow enabled switches, and a Floodlight controller, all linked to a custom, novel interface for the Open-Source SECurity(OSSEC) HIDS framework. OSSEC is implemented in a server-agent architecture, allowing scalability and OS independence. System effectiveness is evaluated against the following factors: alert density and a selective Floodlight module response types. At the expected operational load of 500 events per second (EPS), results reveal a mean system response time of 0.5564 seconds from log generation to flow table update via Floodlights Access Control List module. Load testing further assesses performance at 10 - 10000 EPS for all tested response modules.
报告类型: 科技报告
相关文献
检索历史
应用推荐